🚀 Just released:
Latio 2026 Application Security Market Report.
Read it in our Whitepapers.
100% Signal 0% Noise
Platform
Invicti Platform
Zero-noise AppSec platform
Scan Code
Secure code before runtime
SAST
Early static security analysis
Open Source (SCA)
Find vulnerable dependencies
SBOM & License Risk
Generate SBOMs and track licenses
Secrets
Detect exposed secrets in applications
Infrastructure as Code
Ingest IaC security findings
Container
Track container image vulnerabilities
Test Runtime
Test live applications like attackers
DAST & AI DAST
Test runtime, prove exploitability
Agentic Pentesting
Automate real-world attack techniques
API Security Testing
Discover and test APIs
Attack Surface Management
Identify exposed apps and endpoints
Cloud AppSec
Get a single-pane view of cloud app risk
AI AppSec
Scan smarter, accelerate remediation
Manage Vulnerabilities
See, prioritize, reduce AppSec risk
Vulnerability Management (ASPM)
Centralize and correlate AppSec findings
Compliance & Executive Reporting
Measure risk and impact
Threat Intelligence
Reachability, exploitability, and business logic
Solutions
API Discovery
Manage Vulnerabilities
Automate Security Workflows
Track AppSec KPIs
Manage Open Source Risk
Pricing
Why Invicti
About Us
Invicti vs. Competitors
Case Studies
Contact Us
Careers
Resources
Resource Library
Blog
Webinars
White Papers
Podcasts
Invicti Learn
Savings Calculator
Live Training
Partners
MSSP
Documentation
Vulnerability Database
Get a demo
Home
/
Web Application Vulnerabilities
/ Known Vulnerabilities
Web Application Vulnerabilities
Runtime SCA Findings
Looking for the vulnerability index of Invicti's legacy products?
Invicti Enterprise
Acunetix Standard & Premium
v.26.4.2314
Known Vulnerabilities
This page lists
15072 vulnerabilities
in this category.
Critical: 1617
High: 4043
Medium: 8626
Low: 784
Information: 2
Vulnerability Name
CVE
CWE
Severity
Ruby Other Vulnerability (CVE-2014-8080)
CVE-2014-8080
-
Medium
Joomla Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2014-7982)
CVE-2014-7982
CWE-707
Medium
EspoCRM Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2014-7987)
CVE-2014-7987
CWE-707
Medium
Moodle Permissions, Privileges, and Access Controls Vulnerability (CVE-2014-7837)
CVE-2014-7837
CWE-264
Medium
WordPress Data Processing Errors Vulnerability (CVE-2014-9034)
CVE-2014-9034
-
Medium
MediaWiki Permissions, Privileges, and Access Controls Vulnerability (CVE-2014-9476)
CVE-2014-9476
CWE-264
Medium
Moodle Permissions, Privileges, and Access Controls Vulnerability (CVE-2014-7832)
CVE-2014-7832
CWE-264
Medium
Apache Tomcat Improper Access Control Vulnerability (CVE-2014-7810)
CVE-2014-7810
CWE-284
Medium
Undertow Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') Vulnerability (CVE-2014-7816)
CVE-2014-7816
CWE-22
Medium
Ruby on Rails Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') Vulnerability (CVE-2014-7818)
CVE-2014-7818
CWE-22
Medium
lightbox2 Cross-Site Request Forgery (CSRF) Vulnerability (CVE-2014-9441)
CVE-2014-9441
CWE-352
Medium
Ruby on Rails Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') Vulnerability (CVE-2014-7829)
CVE-2014-7829
CWE-22
Medium
ReviveAdserver Cross-Site Request Forgery (CSRF) Vulnerability (CVE-2014-9407)
CVE-2014-9407
CWE-352
Medium
Python Other Vulnerability (CVE-2014-9365)
CVE-2014-9365
-
Medium
MediaWiki Cross-Site Request Forgery (CSRF) Vulnerability (CVE-2014-9276)
CVE-2014-9276
CWE-352
Medium
MyBB Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2014-9241)
CVE-2014-9241
CWE-707
Medium
phpMyAdmin Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2014-9219)
CVE-2014-9219
CWE-707
Medium
phpMyAdmin Resource Management Errors Vulnerability (CVE-2014-9218)
CVE-2014-9218
-
Medium
Moodle Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2014-7831)
CVE-2014-7831
CWE-200
Medium
OpenVPN AS Cross-Site Request Forgery (CSRF) Vulnerability (CVE-2014-9104)
CVE-2014-9104
CWE-352
Medium
Moodle Improper Input Validation Vulnerability (CVE-2014-9060)
CVE-2014-9060
CWE-20
Medium
Moodle Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2014-7833)
CVE-2014-7833
CWE-200
Medium
WordPress Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2014-9035)
CVE-2014-9035
CWE-707
Medium
ownCloud Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2014-9044)
CVE-2014-9044
CWE-200
Medium
WordPress Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2014-9036)
CVE-2014-9036
CWE-707
Medium
WordPress Cryptographic Issues Vulnerability (CVE-2014-9037)
CVE-2014-9037
-
Medium
WordPress Improper Input Validation Vulnerability (CVE-2014-9038)
CVE-2014-9038
CWE-20
Medium
WordPress 7PK - Security Features Vulnerability (CVE-2014-9039)
CVE-2014-9039
-
Medium
ownCloud Cross-Site Request Forgery (CSRF) Vulnerability (CVE-2014-9041)
CVE-2014-9041
CWE-352
Medium
ownCloud Improper Authentication Vulnerability (CVE-2014-9043)
CVE-2014-9043
CWE-287
Medium
Moodle Cross-Site Request Forgery (CSRF) Vulnerability (CVE-2014-7836)
CVE-2014-7836
CWE-352
Medium
Moodle Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2014-9059)
CVE-2014-9059
CWE-707
Medium
ownCloud Improper Authentication Vulnerability (CVE-2014-9045)
CVE-2014-9045
CWE-287
Medium
ownCloud Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2014-9046)
CVE-2014-9046
CWE-200
Medium
ownCloud CVE-2014-9047 Vulnerability (CVE-2014-9047)
CVE-2014-9047
-
Medium
Moodle Permissions, Privileges, and Access Controls Vulnerability (CVE-2014-7834)
CVE-2014-7834
CWE-264
Medium
ownCloud Permissions, Privileges, and Access Controls Vulnerability (CVE-2014-9048)
CVE-2014-9048
CWE-264
Medium
ownCloud Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2014-9049)
CVE-2014-9049
CWE-200
Medium
MySQL CVE-2014-6496 Vulnerability (CVE-2014-6496)
CVE-2014-6496
-
Medium
OpenSSL Other Vulnerability (CVE-2015-0288)
CVE-2015-0288
-
Medium
MySQL CVE-2015-2617 Vulnerability (CVE-2015-2617)
CVE-2015-2617
-
Medium
Jenkins Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2015-1813)
CVE-2015-1813
CWE-707
Medium
Moodle Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2015-2266)
CVE-2015-2266
CWE-200
Medium
concrete5 Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2015-2250)
CVE-2015-2250
CWE-707
Medium
Django Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2015-2241)
CVE-2015-2241
CWE-707
Medium
phpMyAdmin Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2015-2206)
CVE-2015-2206
CWE-200
Medium
CKEditor Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2014-5191)
CVE-2014-5191
CWE-707
Medium
WordPress Cross-Site Request Forgery (CSRF) Vulnerability (CVE-2014-5204)
CVE-2014-5204
CWE-352
Medium
Piwigo Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') Vulnerability (CVE-2015-2035)
CVE-2015-2035
CWE-138
Medium
Piwigo Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2015-2034)
CVE-2015-2034
CWE-707
Medium
IBM RTC CVE-2015-1971 Vulnerability (CVE-2015-1971)
CVE-2015-1971
-
Medium
IBM RTC Improper Input Validation Vulnerability (CVE-2015-1928)
CVE-2015-1928
CWE-20
Medium
Ember.js Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2015-1866)
CVE-2015-1866
CWE-707
Medium
Ruby Improper Input Validation Vulnerability (CVE-2015-1855)
CVE-2015-1855
CWE-20
Medium
Jboss EAP Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2015-1849)
CVE-2015-1849
CWE-200
Medium
WordPress Cross-Site Request Forgery (CSRF) Vulnerability (CVE-2014-5205)
CVE-2014-5205
CWE-352
Medium
Jenkins Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2015-1812)
CVE-2015-1812
CWE-707
Medium
OpenSSL Other Vulnerability (CVE-2014-5139)
CVE-2014-5139
-
Medium
Jenkins Permissions, Privileges, and Access Controls Vulnerability (CVE-2015-1810)
CVE-2015-1810
CWE-264
Medium
MediaWiki Cross-Site Request Forgery (CSRF) Vulnerability (CVE-2014-5241)
CVE-2014-5241
CWE-352
Medium
MediaWiki Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2014-5242)
CVE-2014-5242
CWE-707
Medium
MediaWiki Improper Input Validation Vulnerability (CVE-2014-5243)
CVE-2014-5243
CWE-20
Medium
MyBB Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2014-5248)
CVE-2014-5248
CWE-707
Medium
Drupal Resource Management Errors Vulnerability (CVE-2014-5265)
CVE-2014-5265
-
Medium
Jenkins Permissions, Privileges, and Access Controls Vulnerability (CVE-2015-1806)
CVE-2015-1806
CWE-264
Medium
OpenSSL Numeric Errors Vulnerability (CVE-2015-1794)
CVE-2015-1794
-
Medium
OpenSSL 7PK - Security Features Vulnerability (CVE-2015-1793)
CVE-2015-1793
-
Medium
OpenSSL Resource Management Errors Vulnerability (CVE-2015-1792)
CVE-2015-1792
-
Medium
OpenSSL Concurrent Execution using Shared Resource with Improper Synchronization ('Race Condition') Vulnerability (CVE-2015-1791)
CVE-2015-1791
CWE-362
Medium
OpenSSL Other Vulnerability (CVE-2015-1790)
CVE-2015-1790
-
Medium
WordPress Resource Management Errors Vulnerability (CVE-2014-5265)
CVE-2014-5265
-
Medium
Drupal Resource Management Errors Vulnerability (CVE-2014-5266)
CVE-2014-5266
-
Medium
Moodle Improper Access Control Vulnerability (CVE-2015-2267)
CVE-2015-2267
CWE-284
Medium
Moodle Resource Management Errors Vulnerability (CVE-2015-2268)
CVE-2015-2268
-
Medium
WordPress Resource Management Errors Vulnerability (CVE-2014-5266)
CVE-2014-5266
-
Medium
«
1
...
182
183
184
...
201
»